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DETAILED ACTION 
Response to Amendment 

1. This action is in response to the amendment filed 06/22/2006. 

Response to Arguments 

2. Applicant's arguments filed 06/22/2006 have been fully considered but 
they are not persuasive. Applicant argues that Davis (5,818,939) does not 
disclose receiving a first command from a second device by a first device, 
the first command being generated only once upon an initial power-up 
sequence by the second device; and within a first device, in response to the 
first command, generating data (page 6, last paragraph). Davis discloses a 
method in which a chipset (a second device) communicates with a 
cryptographic unit (a first device) when both devices are powered up during 
manufacture (initial power-up sequence), in response to the communication 
(a first command) the cryptographic unit then generates a shared secret 
key, which is a long-term value, using its random number generator 620, 
and stores the long-term shared key in a protected internal memory 610 
(fig. 4; col. 5, lines 25-44). 

Applicant argues that Davis does not disclose that the cryptographic 
unit generates a session key in response to a periodic event, the event 
being a power-up sequence (page 7, first full paragraph). Davis discloses 
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that that the cryptographic unit also generates a session key in response to 
a communication session which is a periodic event (an event that happens 
periodically), the session key being a secret value (fig. 4; col. 5, lines 25- 
44). Being aware of the fact that a communication session is different from 
a power-up sequence, the Examiner indicated in the previous Office Action 
that "Davis does not disclose that the periodic event being a power-up 
sequence." (Office Action, page 4, first full paragraph) and relied on Levy. 

Applicant argues that Menezes ("Handbook of Applied Cryptography", 
Section 12.3) does not disclose that entity B generates the short term value 
in response to a periodic event (page 7, 2 nd paragraph). First, Davis already 
discloses that that the cryptographic unit generates a session key in 
response to a periodic event (i.e., a communication session). What Davis 
fails to teach is the device generating the session key by generating a short- 
term value and combining the long-term shared key with the short-term 
value. As a result, Menezes is relied upon for providing the feature that 
Davis fails to teach as Menezes discloses that device B generates a session 
key by generating a short-term value r B and combining the long-term shared 
key K' with r B (page 499). Second, the key exchange protocol disclosed by 
Menezes starts with a request for a communication session by entity A and 
finishes with entity B generating a session key. Thus, entity B generates the 
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session key in response to a communication session which is a periodic 
event. 

Applicant argues that Levy (6,212,633) merely discloses a session key 
may be generated each time the communication interface is reset, but not in 
response to power on reset (page 8, 1 st full paragraph). The communication 
interface (i.e., a bus) does not have its own power source but relies on the 
platform employing the bus. Inherently, a power on reset by the platform 
would cause a reset to the communication interface. 

Applicant argues that the Examiner relies on Menezes for teaching the 
limitation of claims 8 and 14 when the Examiner states that Menezes does 
not disclose the limitation (page 11, last paragraph). Examiner relies on 
Menezes for two separate teachings, one in section 12.3 and the other 
(applied to claims 8 and 14) in section 10.2. 

3. Applicant's arguments, see page 11, filed 06/22/06, with respect to 
the rejection of claim 11 under 35 USC 103 have been fully considered and 
are persuasive. The rejection of claim 11 has been withdrawn. 

Claim Rejections - 35 USC §103 

4. The following is a quotation of 35 U.S.C. 103(a) which forms the basis 
for all obviousness rejections set forth in this Office action: 
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(a) A patent may not be obtained though the invention is not identically disclosed or 
described as set forth in section 102 of this title, if the differences between the subject 
matter sought to be patented and the prior art are such that the subject matter as a 
whole would have been obvious at the time the invention was made to a person having 
ordinary skill in the art to which said subject matter pertains. Patentability shall not be 
negatived by the manner in which the invention was made. 

5. Claims 2-7, 9, 12-13 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Davis (5,818,939) in view of Menezes ("Handbook of 
Applied Cryptography", Section 12.3) and Levy et al (6,212,633). 

Regarding claims 3, 2 and 4-5, Davis discloses a method in which a 
chipset communicates with a cryptographic unit when both devices are 
powered up during manufacture, the cryptographic unit then generates a 
shared secret key which is a long-term value, and stores the long-term 
shared key in a protected internal memory. Davis further discloses that the 
cryptographic unit also generates a session key in response to a 
communication session which is a periodic event, the session key being a 
secret value (fig. 4; col. 5, lines 25-44). 

Davis does not disclose that the cryptographic unit generates the 
session key by generating a short-term value and combining the long-term 
shared key with the short-term value. Menezes discloses that a first entity, 
entity B, generates a short-term value and then generates a secret value 
(i.e., a session key) that is a combination of a shared long-term value, and a 
short-term value (p. 499, 2 nd par., "In the other techniques ... and key 
derivation"; section 12.20). It would have been obvious to one of ordinary 
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skill in the art at the time the invention was made to modify the Davis 
method such that the cryptographic unit generates the session key by 
generating a short-term value and combining the long-term shared key with 
the short-term value, as taught by Menezes. The motivation for doing so 
would have been that a key derivation protocol which entirely avoids the use 
of an encryption function might offer potential advantages with respect to 
export restrictions (p. 499, 2 nd par). 

Davis does not disclose that the periodic event being a power-up 
sequence. Levy discloses that new session keys are generated in response 
to a power-up sequence (col. 9, lines 46-59; col. 16, lines 54-62). It would 
have been obvious to one of ordinary skill in the art at the time the invention 
was made to modify the Davis method further to generate the secret value 
in response to the power-up sequence, as taught by Levy. Accordingly the 
short-term value is also generated in response to the power-up sequence. 
The motivation for doing so would have been that the encryption scheme is 
changed on a regular basis, thereby heightening the security for the 
interface. 

Regarding claim 6, Menezes further discloses transmitting a second 
command from a second entity, entity A, to the first entity and generating 
the short-term value within the first entity in response to the second 
command (page 499, section 12.20). It would have been obvious to one of 
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ordinary skill in the art at the time the invention was made to modify the 
Davis method to transmit a second command from a second entity to the 
first entity and generate the short-term value within the first entity in 
response to the second command, as taught by Menezes. Please refer to 
motivation recited for generating a secret value within the first device, the 
secret value being a combination of both the long-term value and a short- 
term value as taught by Menezes in claim 3. 

Regarding claim 7, Menezes further discloses transmitting the short- 
term value to a second entity prior to producing the secret value (page 499, 
section 12.20). It would have been obvious to one of ordinary skill in the art 
at the time the invention was made to modify the Davis method to transmit 
the short-term value to the second device prior to producing the secret 
value, as taught by Menezes. Please refer to motivation recited for 
generating a secret value within the first device, the secret value being a 
combination of both the long-term value and a short-term value as taught 
by Menezes in claim 3. 

Regarding claims 9 and 12-13, Davis discloses a method comprising: 
generating a shared secret key, which is a long-term value, within a 
cryptographic unit, the shared secret key generated upon detecting an initial 
power-up of a chipset during manufacture; permanently storing the long- 
term value within a protected area of an internal memory; providing the 
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long-term value to a second device communicatively coupled to the chipset; 
generating a session key for each communication session which is a periodic 
event, the session key being a secret value. Davis does not disclose 
generating a short-term value being modified after each power up sequence; 
providing the short-term value to the second device; and generating a secret 
value within the first device and the second device, the secret value being a 
combination of both the long-term value and the short-term value. 

Menezes discloses a method for deriving a session key which is a 
secret value for each communications session between two entities using a 
long-term secret shared by the entities, the method comprising: generating 
a short-term value within a first entity, entity B, the short-term value being 
modified after each periodic event; providing the short-term value to the 
second device; and generating a session key, which meets the limitation of a 
secret value, within the first and second entities, the session key being a 
combination of both the long-term value and the short-term value (p. 499, 
section 12.20). It would have been obvious to one of ordinary skill in the art 
at the time the invention was made to modify the Davis method to include 
the steps of generating a short-term value within the first device, the short- 
term value being modified after each periodic event; providing the short- 
term value to the second device; and generating a session key within the 
first device and the second device, the session key being a combination of 
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both the long-term value and the short-term value, as taught by Menezes. 
The motivation for doing so would have been that a key derivation protocol 
which entirely avoids the use of an encryption function might offer potential 
advantages with respect to export restrictions (p. 499, 2 nd par). 

Levy discloses that new session keys, which meet the limitation of 
secret values, are generated in response to a power-up sequence (col. 9, 
lines 46-59; col. 16, lines 54-62). It would have been obvious to one of 
ordinary skill in the art at the time the invention was made to modify the 
Davis method further to generate the secret value in response to the power- 
up sequence, as taught by Levy. Accordingly the short-term value is also 
generated in response to the power-up sequence. The motivation for doing 
so would have been that the encryption scheme is changed on a regular 
basis, thereby heightening the security for the interface. 

6. Claims 8 and 14 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Davis in view of Menezes and Levy as applied to claims 3 
and 9 above, and further in view of Menezes ("Handbook of Applied 
Cryptography", Section 10.2). Menezes discloses that the combination of 
claim 3 is a result produced by performing a hash operation on both the data 
and the short-term value. However, Menezes does not disclose that the 
hash operation is performed successively. Menezes, in Section 10.2, 
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discloses successively performing a hash operation (p. 390, 2 nd par.). It 
would have been obvious to one of ordinary skill in the art at the time the 
invention was made to modify the method of claims 3 and 9 such that that 
the hash operation is performed successively, as taught by Menezes, in 
order to slow down attacks. 

7. Claims 20, 22-23, 25-26 and 28 are rejected under 35 U.S.C. 103(a) 
as being unpatentable over Davis in view of Menezes (Section 12.3). 

Regarding claims 20, 22, 25-26 and 28, Davis discloses a device 
comprising: an internal memory (fig. 4, element 610); an asymmetric key 
generation unit to generate, in response to an initial power up sequence of 
the device when in communication with another device during manufacture, 
a unique long-term value for permanent storage in a protected area of the 
internal memory (col. 5, lines 24-44; col. 6, lines 57-65). Davis further 
discloses that the asymmetric key generation unit generates a session key, 
which meets the limitation of a secret value; however, Davis does not 
disclose that the asymmetric key generation unit generates, in response to a 
periodic event, a short-term value for storage in the internal memory and a 
cryptographic engine to produce the session key by combining both the 
long-term value and the short-term value. Menezes discloses a key 
generation unit for deriving a session key, which meets the limitation of a 



Application/Control Number: 09/747,238 Page 11 

Art Unit: 2132 

secret value, by generating, in response to a periodic event, a short-term 
value for storage in the internal memory; and a cryptographic engine to 
produce the session key by combining both the long-term value and the 
short-term value (p. 499, section 12.20). It would have been obvious to 
one of ordinary skill in the art at the time the invention was made to modify 
the Davis device such that the asymmetric key generation unit generates, in 
response to a periodic event, a short-term value for storage in the internal 
memory and a cryptographic engine to produce a secret value by combining 
both the long-term value and the short-term value, as taught by Menezes. 
The motivation for doing so would have been that a key derivation protocol 
which entirely avoids the use of an encryption function might offer potential 
advantages with respect to export restrictions (p. 499, 2 nd paragraph). 

Regarding claim 23, Davis further discloses that the internal memory 
includes a non-volatile memory (fig. 4, element 610) and a volatile memory 
(fig. 4, element 615). 

8. Claims 21 and 27 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Davis in view of Menezes as applied to claims 20 and 25 
above, and further in view of Levy. Davis and Menezes do not disclose that 
the periodic event includes a power-up sequence. Levy discloses that new 
session keys, which meet the limitation of secret values, are generated in 
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response to a power-up sequence (col. 9, lines 46-59; col. 16, lines 54-62). 
It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to modify the Davis method further to generate the 
secret value in response to the power-up sequence, as taught by Levy. 
Accordingly the short-term value is also generated in response to the power- 
up sequence. The motivation for doing so would have been that the 
encryption scheme is changed on a regular basis, thereby heightening the 
security for the interface. 

9. Claim 24 is rejected under 35 U.S.C. 103(a) as being unpatentable 
over Davis in view of Menezes as applied to claim 20 above, and further in 
view of Menezes (Section 10.2). Menezes (p. 499, section 12.20) discloses 
that the secret value is a result produced by performing a hash operation on 
both the long-term value and the short-term value. However, Menezes does 
not disclose that the hash operation is performed successively. Menezes, in 
Section 10.2, discloses successively performing a hash operation (p. 390, 2 nd 
par.). It would have been obvious to one of ordinary skill in the art at the 
time the invention was made to modify the method of claim 20 such that 
that the hash operation is performed successively, as taught by Menezes, in 
order to slow down attacks. 
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Allowable Subject Matter 

10. Claim 11 is objected to as being dependent upon a rejected base 
claim, but would be allowable if rewritten in independent form including all of 
the limitations of the base claim and any intervening claims. 

Conclusion 

11. THIS ACTION IS MADE FINAL. Applicant is reminded of the 
extension of time policy as set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to 
expire THREE MONTHS from the mailing date of this action. In the event a 
first reply is filed within TWO MONTHS of the mailing date of this final action 
and the advisory action is not mailed until after the end of the THREE- 
MONTH shortened statutory period, then the shortened statutory period will 
expire on the date the advisory action is mailed, and any extension fee 
pursuant to 37 CFR 1.136(a) will be calculated from the mailing date of the 
advisory action. In no event, however, will the statutory period for reply 
expire later than SIX MONTHS from the mailing date of this final action. 

Any inquiry concerning this communication or earlier communications 
from the examiner should be directed to Minh Dinh whose telephone number 
is 571-272-3802. The examiner can normally be reached on Mon-Fri: 
10:00am-6:30pm. 
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If attempts to reach the examiner by telephone are unsuccessful, the 
examiner's supervisor, Gilberto Barron can be reached on 571-272-3799. 
The fax phone number for the organization where this application or 
proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained 
from the Patent Application Information Retrieval (PAIR) system. Status 



information for published applications may be obtained from either Private 
PAIR or Public PAIR. Status information for unpublished applications is 
available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on 
access to the Private PAIR system, contact the Electronic Business Center 
(EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated 
information system, call 800-786-9199 (IN USA OR CANADA) or 571-272- 
1000. 
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